Certified Advanced Persistent Threat Analyst


Certified Advanced Persistent Threat Analyst, Singapore elarning online course

Course Description

Cyber-attacks have become so sophisticated over the years, that a new term has emerged - Advanced Persistent Threat, which we will refer to as APT. An APT is a group of individuals that have both the means and the intent to launch persistent attacks against specific targets. Understanding these groups and their behavior is important when evaluating threats against any organization.

Hackers have traditionally targeted large corporations, but today small to midsize businesses are being attacked with the same type of highly sophisticated malware. These new strains of advanced malware are often referred to as APTs

Modern malware uses Advanced techniques such as encrypted communication channels, kernel-level rootkits, and sophisticated evasion capabilities to get past a network’s defenses. More importantly, they often leverage zero day vulnerabilities – flaws for which no patch is available yet and no signature has been written.

Modern malware is often Persistent and designed to stick around. It’s stealthy and carefully hides its communications. It lives in a victim’s network for as long as possible, often cleaning up after itself by deleting logs, using strong encryption, and only reporting back to its controller in small, obfuscated bursts of communication.

Many attacks are now blended combinations of different techniques. A common tactic for hackers is to initiate an APT with spear phishing. This involves sending a carefully crafted email that appears to be in the from of a known individual or business with a link to a malicious website or an infected download.

Once the initial breach is successful, attackers can further damage defenses by disabling security protocols, changing security settings or stealing passwords. Groups of highly skilled, motivated, and very well-funded attackers represent significant Threats because they have very specific targets and goals in mind – often financial gain from theft of credit cards and other valuable account information.

Here are the topics that we will be covering in this course. We will begin by going over the APT Lifecycle and teach you a structured approach to analyze and assess inherent vulnerabilities. We will teach you mitigation and countermeasures that may prevent an attacker from gaining a foothold into an organization.

Next, we will get you familiar with APT1 Group and some common ATPs we have seen in the last few years like Stuxnet, and two new ones, Adwind and Poseidon. Lastly, we will get you familiar with the Cyber World War.


Course Objectives

1. Understanding APTs
2. Equation Group
3. Advanced Dissecting Techniques
4. Fighting ATPs


Related Courses

  • Security Professional (CISSP)

    Security Professional (CISSP)

    SGD $299.00

    Course Description

    The vendor-neutral CISSP certification is the ideal credential for those with proven deep technical and managerial competence, skills, experience, and credibility to design, engineer, implement, and manage their overall information security program to protect organizations from growing sophisticated attacks. Backed by (ISC)², the globally recognized, nonprofit organization dedicated to advancing the information security field, the CISSP was the first credential in the field of information security to meet the stringent requirements of ISO/IEC Standard 17024. Not only is the CISSP an objective measure of excellence, but also a globally recognized standard of achievement.

    Read more...

  • Google Cloud Platform Data Storage Overview & Networking Fundamentals

    Google Cloud Platform Data Storage Overview & Networking Fundamentals

    SGD $20.00

    Course Description

    Google Cloud Platform which has you enterprise covered. GCP offers object storage for different needs and price points as well as managed MySQL and globally-scalable NoSQL databases. Our archival storage provides industry-leading pricing with the performance of disc. Different applications and workloads require different storage and database solutions. GCP offers a full suite of industry-leading storage services that are price performant and meet your needs for structured, unstructured, transactional, and relational data. This course will help you identify the solutions that fit your scenarios, whether they are mobile applications, hosting commercial software, data pipelines, or storing backups.   Google Cloud Platform enables developers to build, test and deploy applications on Google’s highly-scalable, secure, and reliable infrastructure. This course covers specifically Google Cloud Platform Networking services. This course will cover the features and functions of Google Cloud Platform Networking Services so that you will understand the GCP options available.. We will dive into GCP Networking fundamentals such as Software Defined Networking, Load Balancing, Autoscaling and Virtual Private Clouds. As an added bonus we also will dive into Identity and Access Management as well from a networking security perspective. After taking this class you should be able to understand what GCP Cloud services should enable your organization around networking services. Whether you’re a developer or architect this course will help understand the basic capabilities and some of the useful advanced features of GCP networking services and features.

    Read more...

  • Certified Ethical Hacker Bootcamp

    Certified Ethical Hacker Bootcamp

    SGD $299.00

    Course Description

    Penetration Testing and Ethical Hacker Bootcamp This bootcamp prepares aspiring and current security professionals for industry certification exams and interviews to enhance their careers. With top experts and an interactive environment, students learn about key issues plaguing the information security world, incident management processes and penetration testing. This bootcamp was designed for those who wish to take an immersive look at the various in-demand security professional careers. You'll examine not just the theories and tools a professional hacker would use when conducting a penetration test, but also gain an insight into the day to day workflow of an ethical hacker. Students gain practical experience and in-depth knowledge about common ethical hacking topics such as intrusion detection, policy creation, social engineering, DDoS attacks, buffer overflows and virus creation. Without harming any real networks, students will learn about perimeter defenses, scanning and attacking their own networks as well as how intrusions escalate the impact of their breaches and the tools and steps necessary to secure a system

    Read more...


Content

Understanding APTs

+

Advanced Persistent Threat Defender Course Intro

APT Overview Part 1

APT Overview Part 2

APT Overview Part 3

APT Overview Part 4

APT Overview Part 5

Cyber Kill Chain & APT Lifecycle Part 4

Cyber Kill Chain & APT Lifecycle Part 5

Cyber Kill Chain & APT Lifecycle Part 6

Cyber Kill Chain & APT Lifecycle Part 7

Cyber Kill Chain & APT Lifecycle Part 8

APT1 Overview

Stuxnet Overview Part 1

Stuxnet Overview Part 2

Stuxnet Overview Part 3

Cyberwar: New Domain of Warfare

Mr. Robot Threat Capabilities

Cyber Kill Chain & APT Lifecycle Part 1

Cyber Kill Chain & APT Lifecycle Part 2

Cyber Kill Chain & APT Lifecycle Part 3

Equation Group

+

Equation Group Overview Part 1

Equation Group Overview Part 2

Equation Group Components Part 1

Equation Group Components Part 2

Equation Group Components Part 3

DoubleFantasy

EquationDrug

GrayFish

Fanny Part 1

Fanny Part 2

Infection Mechanism

LAB 2: Equation Group

Advanced Dissecting Techniques

+

Advanced Dissecting Techniques Overview Part 1

Advanced Dissecting Techniques Overview Part 2

Binary Instrumentation Part 1

Binary Instrumentation Part 2

Binary Instrumentation Part 3

Automated String Decoding Part 1

Automated String Decoding Part 2

Automated String Decoding Part 3

Automated String Decoding Part 4

Immunity Debugger PyCommands Part 1

Immunity Debugger PyCommands Part 2

Immunity Debugger PyCommands Part 3

Immunity Debugger PyCommands Part 4

Windows Kernel Drivers Analysis? Part 1

Windows Kernel Drivers Analysis? Part 2

Windows Kernel Drivers Analysis? Part 3

Windows Kernel Drivers Analysis? Part 4

Windows Kernel Drivers Analysis? Part 5

Fighting ATPs

+

The Challenge Part 1

The Challenge Part 2

The Challenge Part 3

Callback detection strategy Part 1

Callback detection strategy Part 2

Application Crashing Monitoring

SGD $299.00
(Price excludes GST)
GET ACCESS NOW
Convince your boss email
This site is best viewed using the latest versions of Google Chrome, Apple Safari, Mozilla FireFox, Microsoft Internet Explorer 11 and Edge which supports HTML5/Webkit technologies.